) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): cpe:2.3:a:sun:java_system_application_server:8.2:*:*:*:*:*:*:*
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2012-3155 |
Unspecified vulnerability in the CORBA ORB component in Sun GlassFish Enterprise Server 2.1.1, Oracle GlassFish Server 3.0.1 and 3.1.2, and Sun Java System Application Server 8.1 and 8.2 allows remote attackers to affect availability, related to CORBA ORB. Published: October 16, 2012; 7:55:03 PM -0400 |
V3.x:(not available) V2.0: 5.0 MEDIUM |
| CVE-2009-0278 |
Sun Java System Application Server (AS) 8.1 and 8.2 allows remote attackers to read the Web Application configuration files in the (1) WEB-INF or (2) META-INF directory via a malformed request. Published: January 26, 2009; 9:30:04 PM -0500 |
V3.x:(not available) V2.0: 5.0 MEDIUM |
| CVE-2007-5153 |
Unspecified vulnerability in Sun Java System Access Manager 7.1, when installed in a Sun Java System Application Server 8.x container, allows remote attackers to execute arbitrary code via unspecified vectors. Published: October 01, 2007; 1:17:00 AM -0400 |
V3.x:(not available) V2.0: 6.8 MEDIUM |
| CVE-2007-4025 |
Unspecified vulnerability in Sun Java System (SJS) Application Server 8.1 through 9.0 before 20070724 on Windows allows remote attackers to obtain JSP source code via unspecified vectors. Published: July 26, 2007; 3:30:00 PM -0400 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
| CVE-2007-3715 |
Sun Java System Application Server and Web Server 7.0 through 9.0 before 20070710 do not properly process XSLT stylesheets in XSLT transforms in XML signatures, which allows context-dependent attackers to execute an arbitrary Java method via a crafted stylesheet, a related issue to CVE-2007-3716. Published: July 11, 2007; 7:30:00 PM -0400 |
V3.x:(not available) V2.0: 9.3 HIGH |